Hi everyone,
I need help understanding the correct way to disable password sync in Jamf Connect while still using Google Workspace authentication during ADE enrollment.
Our current setup (Jamf Connect + Google Workspace + ADE) behaves like this:
-
During initial login, the user signs in with their Google Workspace account
-
Jamf Connect creates the local macOS user account based on the Google workspace account (First name and Last name)
-
The initial local mac password is set to the Google password
-
If the user later changes their Google password, Jamf Connect detects a mismatch and prompts:
“Your local password and network password are different. Please enter your local password to sync.” -
Once the user enters it, the Mac password gets updated to match the new Google password
What we want instead:
-
Users authenticate with Google Workspace ONLY for the first login
-
Jamf Connect creates the local account
-
After that, the macOS password and Google password must be completely independent
-
No password sync, no mismatch prompts, no forced alignment, users should be able to change the Mac login password as they like.
Would really appreciate guidance or an example configuration from anyone running this “Google login + no password sync” workflow on ADE Macs.
Thanks in advance!